Information Security Management: A4A Case Study, Semester 1

Verified

Added on 2020/05/16

AI Summary

This assignment delves into information security management by analyzing a case study of "A4A". The report identifies the information assets of the organization, including the systems and the projects developed. It highlights the key information security risks such as virus/malware threats and insider threats, and the security of the data. The report further discusses the risks associated with the location of the members, emphasizing the possibility of information theft during data transfer and the increased insider threat. This assignment is a valuable resource for understanding the challenges and solutions related to information security in an organizational context, including the importance of data protection.

Contribute Materials

Your contribution can guide someone’s learning journey. Share your documents today.

Running head: INFORMATION SECURITY MANAGEMENT
Information Security Management
Name of the Student
Name of the University
Author Note

Secure Best Marks with AI Grader

Need help grading? Try our AI Grader for instant feedback on your assignments.

1
INFORMATION SECURITY MANAGEMENT
Table of Contents
Answer 1..............................................................................................................................2
Answer 2..............................................................................................................................2
Answer 3..............................................................................................................................2
References............................................................................................................................3

2
INFORMATION SECURITY MANAGEMENT
Answer 1
The information assets of Academics for Academics includes the systems (PC, laptop) on
which the projects are to be developed and delivered. The other information asset of the
company includes the soft copy and hard copy of the assignments or the projects developed by
the members of A4A. This is an information asset of the organization because all the information
produced by the members except the emails, marked assignments and exams are properties of the
organization. The information system storing all these data is a major information asset of the
organization and therefore, proper policies are needed to be enforced for protection of the same.
Answer 2
The major information security risks that are associated with the information asset are
virus or malware threat and threat from an insider. Proper security of the information asset is to
be ensured in order to prevent the virus or malware attack to the system (Von Solms and Van
Niekerk 2013). The organization is further exposed to threat from insider who can make an
illegal use of the data or the reports produced in the organization.
Answer 3
The risks identified in the previous sections are associated with the information system
and its data in A4A. However, there can be other risks as well, depending on the location where
the member works. If a member is working from a place outside the organization, there is a
possibility of the information theft while its transfer (Ciampa 2012). Furthermore, the
information security risk from an insider threat increases as well.

3
INFORMATION SECURITY MANAGEMENT
References
Ciampa, M., 2012. Security+ guide to network security fundamentals. Cengage Learning.
Von Solms, R. and Van Niekerk, J., 2013. From information security to cyber
security. computers & security, 38, pp.97-102.